Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
File: QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft (raw, json)
Hash identifier: 5WzBuFUfRAfkZ0tYUJoQ90wTbFElcfdxm057+2ZPJ3I=
Subject key identifier: 23:85:97:09:AE:AB:BD:C4:DB:F0:94:46:39:A0:7F:2F:E5:46:60:3A
Authority key identifier: 41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
Certificate issuer: /CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Certificate serial: 019D98F4E01BC3EC4AAD5CE813406CC11858
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
Manifest number: 1851
Signing time: Fri 17 Apr 2026 01:01:18 +0000
Manifest this update: Fri 17 Apr 2026 01:01:18 +0000
Manifest next update: Sat 18 Apr 2026 01:01:18 +0000
Files and hashes: 1: QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl (hash: M9zlmJvigdn69pGnOSirurI99facL8AbdqlQgpCGTxk=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 17 Apr 2026 22:00:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:98:f4:e0:1b:c3:ec:4a:ad:5c:e8:13:40:6c:c1:18:58
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=41785cb5fc6b40fdf14f72a6d25f4143c17c317c
Validity
Not Before: Apr 17 01:01:18 2026 GMT
Not After : Apr 18 01:01:18 2026 GMT
Subject: CN=23859709aeabbdc4dbf0944639a07f2fe546603a
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d3:67:b8:24:42:29:be:ce:d8:39:a8:89:38:e3:
b7:4c:39:24:6b:fe:6b:dd:eb:6a:80:a7:da:ba:56:
b7:ec:b7:50:18:19:9c:64:ec:54:11:00:b8:ce:64:
bb:80:73:c0:d9:9b:c7:1d:04:be:d1:4b:c9:50:19:
22:31:1f:74:3d:aa:79:7d:2a:60:e6:47:c0:37:1a:
de:c4:e0:41:25:a3:41:53:83:d7:29:4e:e4:84:0f:
59:99:52:70:f7:09:d6:1f:11:c4:61:e8:50:dd:c9:
b2:46:c3:66:c6:fc:6d:b8:94:09:7d:3c:d4:22:74:
12:4a:e0:d6:ee:50:67:c7:d0:05:6a:12:0c:57:cc:
8d:e4:e3:d5:5f:73:12:be:4e:8b:37:1d:c2:3d:7c:
ba:26:c7:ad:6c:a6:b5:63:86:c9:33:e5:72:10:91:
d8:4f:33:1e:82:cc:7a:b4:9f:c0:be:9f:08:f1:14:
72:e5:62:a0:d4:7e:84:95:e6:9f:12:01:00:20:ca:
7f:ef:fc:bf:5e:9d:a0:0c:1f:41:38:95:d7:3f:38:
40:60:ad:6c:ee:44:bc:b0:11:f5:2f:a1:c5:b8:04:
69:0b:a3:f8:80:b3:f4:c9:b8:aa:ad:9d:c7:7e:46:
d3:95:15:b6:6c:e6:cf:db:97:a9:68:c4:d1:65:83:
f8:e5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
23:85:97:09:AE:AB:BD:C4:DB:F0:94:46:39:A0:7F:2F:E5:46:60:3A
X509v3 Authority Key Identifier:
keyid:41:78:5C:B5:FC:6B:40:FD:F1:4F:72:A6:D2:5F:41:43:C1:7C:31:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/QXhctfxrQP3xT3Km0l9BQ8F8MXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/fb/ae3840-7dda-482e-a24e-e46ec5b9b06c/1/QXhctfxrQP3xT3Km0l9BQ8F8MXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
07:c7:3d:88:7a:10:5a:d5:22:8e:40:b5:ff:7e:9a:5a:fb:6b:
64:c5:3a:56:8e:08:92:4a:77:df:71:3e:19:e2:07:30:e4:ee:
12:2e:ef:95:b4:bc:62:8f:b8:14:6a:5d:d6:ec:72:a0:ff:91:
fa:02:6c:ed:20:ab:04:34:55:0a:79:da:c1:10:f8:8c:ba:d8:
f7:41:86:8c:60:90:55:37:b6:17:cf:2b:ef:5b:03:21:2b:d6:
29:2e:b4:ee:23:3d:54:f8:c9:45:15:55:11:30:d0:6c:8c:22:
a5:47:d6:16:4d:66:22:4d:47:e2:26:23:98:87:9f:8e:36:d7:
72:5f:54:54:bb:df:d4:84:5b:89:5c:70:69:43:1d:61:cc:d0:
5f:68:80:04:1e:6c:f1:99:80:e4:72:69:54:4f:6f:05:a2:fc:
71:4a:37:fd:29:ac:44:21:a9:6e:13:8f:9a:8d:46:7e:43:d7:
45:28:d6:da:c5:47:d3:39:21:26:13:1f:ac:4a:0d:79:b7:63:
64:2a:da:d1:67:af:ed:37:bd:47:83:87:25:2f:58:ea:d0:fd:
16:f9:23:50:05:42:6e:2c:ed:36:c0:79:fd:9d:ad:0e:de:8d:
bd:46:25:8e:79:a8:2e:0b:0d:a8:0c:d0:89:41:0a:2d:9f:37:
6e:ed:e9:39
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Apr 17 03:51:53 2026 by rpki-client